archercreat / srvhide
Simple tool to dump/hide services in services.exe process.
☆13Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for srvhide
- ☆57Updated 2 years ago
- An extended proof-of-concept for the CVE-2021-21551 Dell ‘dbutil_2_3.sys’ Kernel Exploit☆23Updated 3 years ago
- Hijack NotifyRoutine for a kernelmode thread☆41Updated 2 years ago
- UnknownField is a tool based clang that obfuscating the order of fields to protect your C/C++ game or code.☆44Updated last year
- Bypassing kernel patch protection runtime☆19Updated last year
- Yet another Windows DLL injector.☆38Updated 3 years ago
- Anti-Analysis technique, trick the debugger by Hiding events from it.☆18Updated 3 years ago
- Proof-of-concept game using VBS enclaves to protect itself from cheating☆19Updated last week
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆46Updated last year
- A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.☆36Updated 2 years ago
- WinHvShellcodeEmulator (WHSE) is a shellcode emulator leveraging the Windows Hypervisor Platform API☆19Updated 2 years ago
- Demonstrate calling a kernel function and handle process creation callback against HVCI☆49Updated last year
- A compact tool for detecting AV/EDR hooks in default Windows libraries.☆29Updated 2 years ago
- ☆25Updated 3 years ago
- ☆22Updated last year
- Shh0ya Kernel Hook Driver☆19Updated 3 years ago
- vdk is a set of utilities used to help with exploitation of a vulnerable driver.☆39Updated 2 years ago
- c++ implementation of windows heavens gate☆55Updated 3 years ago
- direct systemcalls with a modern c++20 interface.☆42Updated last year
- Load Dll into Kernel space☆38Updated 2 years ago
- ☆26Updated last year
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆61Updated last year
- ☆32Updated last year
- Wow64 Heaven's Gate Hook☆26Updated 3 years ago
- Protected Process Light Library☆18Updated 4 years ago
- Sample/PoC Windows kernel driver for detect DMA devices by using Vendor ID and Device ID signatures☆30Updated 2 months ago
- windows kernel pagehook☆38Updated 2 years ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆24Updated 3 years ago